<html><body><div style="color:#000; background-color:#fff; font-family:HelveticaNeue, Helvetica Neue, Helvetica, Arial, Lucida Grande, sans-serif;font-size:16px"><div id="yui_3_16_0_1_1438526383040_69070">Wow, thank you so much for such a complete explanation. I appreciate the effort. I am out for the next day or so but will try and implement this as soon as I can.</div><div id="yui_3_16_0_1_1438526383040_69288">Thank you again and I will let you know the results. </div> <div id="yui_3_16_0_1_1438526383040_69391" style="font-family: HelveticaNeue, Helvetica Neue, Helvetica, Arial, Lucida Grande, sans-serif; font-size: 16px;"> <div id="yui_3_16_0_1_1438526383040_69390" style="font-family: HelveticaNeue, Helvetica Neue, Helvetica, Arial, Lucida Grande, sans-serif; font-size: 16px;"> <div id="yui_3_16_0_1_1438526383040_69389" dir="ltr"> <hr size="1"> From: Alexander Bokovoy <abokovoy@redhat.com> To: Justean <justeank@yahoo.com> Cc: "freeipa-users@redhat.com" <freeipa-users@redhat.com> Sent: Wednesday, August 5, 2015 12:40 PM Subject: Re: [Freeipa-users] Change default email format </div> <div id="yui_3_16_0_1_1438526383040_69392" class="y_msg_container"> On Wed, 05 Aug 2015, Alexander Bokovoy wrote: >On Mon, 03 Aug 2015, Justean wrote: >>Good morning, I was wondering if there is a way to change the way >>freeipa builds a user's email address by default. Currently it takes >>the username and appends the domain name but I would like it to take >>the form <a shape="rect" ymailto="mailto:firstname.lastname@domainname.com" href="mailto:firstname.lastname@domainname.com">firstname.lastname@domainname.com</a> >It is not possible to redefine email's format via configuration so you >need to write some code. Luckily, you can amend existing code without >touching it. > >Below is an example: >----------------------------------------------------------------------- >/usr/lib/python2.7/site-packages/ipalib/plugins/user-ext-mail-format.py >----------------------------------------------------------------------- >from ipalib.plugins.user import user_add > >def override_default_mail_cb(self, ldap, dn, entry_attrs, attrs_list, *keys, **options): > if not 'mail' in entry_attrs: > name = {'givenname': entry_attrs.get('givenname').lower(), > 'sn': entry_attrs.get('sn').lower()} > mail = "{givenname}.{sn}".format(**name) > entry_attrs['mail'] = self.obj.normalize_and_validate_email(mail) > return dn > >user_add.register_pre_callback(override_default_mail_cb, first=True) >----------------------------------------------------------------------- > >What this Python code does? It adds a callback to user-add method in IPA >that is run before other callbacks (first=True). The callback is then >checks if mail attribute was already specified by the administrator >when calling 'ipa user-add' (Web UI calls this for you). If not, it >derives mail format from lower-cased versions of first and last names of >the user (known as 'givenname' and 'sn' attributes in LDAP >correspondingly). It then sets mail attribute to a full email format via >self.obj.normalize_and_validate_email() function which will pick up the >default DNS domain value and construct correct email. > >You need to maintain this plugin extension on all IPA masters used for >creating users. Best way to do that is by packaging the plugin in an RPM >and installing it on IPA masters. > >You also need to restart httpd service on IPA master to apply the >plugin. > >It is used like this: > ># systemctl restart httpd ># ipa user-add some.user --first Some --last User >---------------------- >Added user "some.user" >---------------------- > User login: some.user > First name: Some > Last name: User > Full name: Some User > Display name: Some User > Initials: SU > Home directory: /home/some.user > GECOS: Some User > Login shell: /bin/sh > Kerberos principal: <a shape="rect" ymailto="mailto:some.user@EXAMPLE.COM" href="mailto:some.user@EXAMPLE.COM">some.user@EXAMPLE.COM</a> > Email address: <a shape="rect" ymailto="mailto:some.user@example.com" href="mailto:some.user@example.com">some.user@example.com</a> > UID: 1634400022 > GID: 1634400022 > Password: False > Member of groups: ipausers > Kerberos keys available: False Actually, I realized because I gave the same user login as 'FirstName.LastName', it might be less apparent that the code works. Let's try with another user: # ipa user-add foo.bar --first Some --last User -------------------- Added user "foo.bar" -------------------- User login: foo.bar First name: Some Last name: User Full name: Some User Display name: Some User Initials: SU Home directory: /home/foo.bar GECOS: Some User Login shell: /bin/sh Kerberos principal: <a shape="rect" ymailto="mailto:foo.bar@EXAMPLE.COM" href="mailto:foo.bar@EXAMPLE.COM">foo.bar@EXAMPLE.COM</a> Email address: <a shape="rect" ymailto="mailto:some.user@example.com" href="mailto:some.user@example.com">some.user@example.com</a> UID: 1634400023 GID: 1634400023<div class="qtdSeparateBR"> </div><div class="yqt9792164078" id="yqtfd21560"> Password: False Member of groups: ipausers Kerberos keys available: False -- / Alexander Bokovoy </div> </div> </div> </div> </div></body></html>